Denial-of-Service Vulnerability in Wyse Management Suite by Dell
CVE-2023-32481

4.9MEDIUM

Key Information:

Vendor: Dell
Status: Wyse Management Suite
Vendor: CVE Published:; 20 July 2023

Summary

A denial-of-service vulnerability exists in Wyse Management Suite versions prior to 4.0, allowing an authenticated malicious user to exploit the system. By flooding the configured SMTP server with a vast number of requests, the attacker can disrupt access to the management suite, preventing legitimate users from utilizing its services effectively.

Affected Version(s)

Wyse Management Suite 4.0 and below

References

https://www.dell.com/support/kbdoc/en-us/000215351/dsa-20...

vendor-advisory

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 20, 2023
Vulnerability Reserved
May 9, 2023